imap-smtp-email

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill connects to external IMAP servers and fetches/parses user emails (see SKILL.md commands like "check", "fetch", "search" and scripts/imap.js which parses email bodies, HTML, and attachments), exposing untrusted, user-generated content that the agent will read and could influence its actions.